#!/usr/bin/python
#  -*- coding: UTF-8 -*-
# vim: set fileencoding=UTF-8 :

# Django settings for pocp project.

DEBUG = True
TEMPLATE_DEBUG = DEBUG

ADMINS = (
    ('Ad ministrator', 'administrator@example.com'),
    # ('Your Name', 'your_email@domain.com'),
)

MANAGERS = ADMINS

DATABASE_ENGINE   = 'postgresql'           # 'postgresql_psycopg2', 'postgresql', 'mysql', 'sqlite3' or 'oracle'.
DATABASE_NAME     = 'pocp'             # Or path to database file if using sqlite3.
DATABASE_USER     = 'pocp'             # Not used with sqlite3.
DATABASE_PASSWORD = 'p0cp'         # Not used with sqlite3.
DATABASE_HOST     = ''             # Set to empty string for localhost. Not used with sqlite3.
DATABASE_PORT     = ''             # Set to empty string for default. Not used with sqlite3.

# Local time zone for this installation. Choices can be found here:
# http://en.wikipedia.org/wiki/List_of_tz_zones_by_name
# although not all choices may be available on all operating systems.
# If running in a Windows environment this must be set to the same as your
# system time zone.
#TIME_ZONE = 'America/Chicago'
TIME_ZONE = 'Europe/Zurich'

# Language code for this installation. All choices can be found here:
# http://www.i18nguy.com/unicode/language-identifiers.html
LANGUAGE_CODE = 'en-us'

SITE_ID = 1

# If you set this to False, Django will make some optimizations so as not
# to load the internationalization machinery.
USE_I18N = True

# Absolute path to the directory that holds media.
# Example: "/home/media/media.lawrence.com/"
MEDIA_ROOT = ''

# URL that handles the media served from MEDIA_ROOT. Make sure to use a
# trailing slash if there is a path component (optional in other cases).
# Examples: "http://media.lawrence.com", "http://example.com/media/"
MEDIA_URL = ''

# URL prefix for admin media -- CSS, JavaScript and images. Make sure to use a
# trailing slash.
# Examples: "http://foo.com/media/", "/media/".
ADMIN_MEDIA_PREFIX = '/media/'

# Make this unique, and don't share it with anybody.
SECRET_KEY = '&/%&UZG&()jbzugt98juh78t&T%&J)Z/(G&G678g76G/&GH)hi'

# List of callables that know how to import templates from various sources.
TEMPLATE_LOADERS = (
    'django.template.loaders.filesystem.load_template_source',
    'django.template.loaders.app_directories.load_template_source',
#     'django.template.loaders.eggs.load_template_source',
)

MIDDLEWARE_CLASSES = (
    'django.middleware.common.CommonMiddleware',
    'django.contrib.sessions.middleware.SessionMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
)

ROOT_URLCONF = 'pocp.urls'

TEMPLATE_DIRS = (
    # Put strings here, like "/home/html/django_templates" or "C:/www/django/templates".
    # Always use forward slashes, even on Windows.
    # Don't forget to use absolute paths, not relative paths.
    '/usr/local/pocp/templates/',
)

INSTALLED_APPS = (
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
#    'django.contrib.sites',
    'django.contrib.admin',
    'django.contrib.admindocs',
    'pocp.ocp',
    'pocp.xml_rpc',
)

LOGIN_REDIRECT_URL = "/"

########################################################################
# * GRE tunnel ranges
GRE_TUNNEL_RANGE = [10, 100]
GRE_TUNNEL_CONF  = 5

# * Masquerade (SNAT)
# If you have on the WLan site a private IP range, you want to masquerade them
# (SNAT).  You can either edit the iptables-restore file under 
#   templates/iptables-restore.tmpl
# or insert in the set EASY_MASQUERADE all IP ranges
#EASY_MASQUERADE = () # default, no masquerade
EASY_MASQUERADE = "eth0"	# masq. all which is outgoing on interface eth0

########################################################################
# * Auth and session timeouts
SESSION_COOKIE_AGE = 3600
SESSION_EXPIRE_AT_BROWSER_CLOSE = True

########################################################################
# * Ldap auth
# 1)  Activate ldap auth backend, see
#     http://docs.djangoproject.com/en/dev/ref/settings/#authentication-backends
AUTHENTICATION_BACKENDS = (
        'pocp.helper.ldap-auth.ActiveDirectoryGroupMembershipSSLBackend',
        'django.contrib.auth.backends.ModelBackend' # Default, must be set!!
    )

# 2)  Local ldap specific configuration statements, see also helper/ldap.py
# Settings for ldap configuration, see helper/ldap.py

AD_DNS_NAME='example.com'
# If using non-SSL use these
AD_LDAP_PORT=389
AD_LDAP_URL='ldap://%s:%s' % (AD_DNS_NAME,AD_LDAP_PORT)
# If using SSL use these:
#AD_LDAP_PORT=636
#AD_LDAP_URL='ldaps://%s:%s' % (AD_DNS_NAME,AD_LDAP_PORT)
AD_SEARCH_DN='dc=example,dc=com'
AD_NT4_DOMAIN='example.com'
AD_SEARCH_FIELDS= ['mail','givenName','sn','sAMAccountName','memberOf']
AD_MEMBERSHIP_REQ=['Users']
AD_CERT_FILE='/dummy/path/muss/hier/stehen.txt'
AD_DEBUG=True
AD_DEBUG_FILE='/var/log/pocp/ldap.debug.log'

########################################################################
